camino-ev-charger

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill documentation provides installation instructions via npx from the author's GitHub repository and clawhub. These are standard installation methods for AI agent skills.
  • [COMMAND_EXECUTION]: The skill uses a shell script scripts/ev-charger.sh to facilitate API requests. The script properly validates JSON input using jq and uses specific parameters to build the API query string, reducing risk of command injection.
  • [CREDENTIALS_UNSAFE]: The skill follows security best practices by using an environment variable CAMINO_API_KEY for authentication. The instructions correctly guide the user to store this secret in their local configuration file rather than hardcoding it.
  • [DATA_EXFILTRATION]: Network operations are limited to the official API endpoint api.getcamino.ai. There is no evidence of sensitive local files being accessed or transmitted.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 11:16 AM
Security Audit — agent-trust-hub — camino-ev-charger